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Hacking is 
Solving a 
Series of 
Puzzles 


Trying to make 
something do something 
it can't 


Getting to know a 
system so intimately 
you can work around its 
perceived limitations 


Making the most of 
access rights and 
limited resources 
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HITE HAT GRAY HAT BLACK HAT 
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Mr. Robot - 
Why 15 this 
Interesting? 


Somewhat believable, 
engrossing story about 
hacker mindset 


Passion for 
understanding 
technology well enough 
to exploit it 


MR. РОВОТ 


and security is season 200 UO 
impossible” 


"Companies are evil 
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SOME STORIES 


| run % - - огсе Red " Offensive Security Services 


• Penetration testing 


• Vulnerability management 


An autonomous team of programs 
veteran hackers, within IBM ㆍ Red teaming 
Security, hired to break into · Code review 
organizations and uncover ㆍ Static analysis 


risky vulnerabilities. უში |. 
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Some of the folks оп my team: 
Space Rogue | Evilmog | The Toymaker | Videoman | QOphi |retBandit | keybored... and many more. 
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1 Smart City Security 


Demo built by X-Force Red My team found 17 zero-day vulnerabilities within four smart city 
hackers to show how they products. Research unveiled at Black Hat USA 2018. Landed 100+ 
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dam system, causing the media stories worldwide. 

dam to overflow onto 
the ₪: ” B B 

| WEEK CNBC 

Forbes = D 

CYBERSECURITY г 

CNN << 

СММ The Washington Post 
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50000, This Happened 
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А Problem 
Begins 


| sold my car 
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Technology 
Abounds 


Navigation System 
Satellite Radio 
Live Assist 
Connected Car 


Mobile Application 
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Mobile 
Application 
Features 


Geolocation of Car 
Climate Control 
Navigation Control 
Horn 


Remote Unlock 
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The Sale 


Traded car back to 
original factory dealer 


| deauthorized all 
accounts, satellite radio, 
garage door openers, 
etc. 


Dealer ensured that all 
keys issued to the car 
were surrendered at time 
of sale. 
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After The Sale 


The Mobile App Still Worked... 


...For Over Two Years 
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After The Sale: 
Demonic 
Possession 


BREAKING NEWS 2 
LOCAL CAR POSSESSED 


EN OWNER REPORTS PROLONGED ERRATIC BEHAVIOR BY AUTOMOBILE 
(с ~ Zu 
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Емегуопе 
Loves Donuts 


For most people, 
security is a secondary 
impulse. 
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Offensive to a 
Defense 
Contractor 


Try not to get shot 
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Offensive to a 
Defense 
Contractor 


Try not to get shot 
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Е adminphp 08-Oct-2013 0252 
[E] phpinfo.php 08-Oct-2013 02:58 
Btestphp ^ 08-Oct-2013 02:53 
E] userphp 08-Oct-2013 02:52 
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Apache/2.2.3 (CentOS) Server at 192.168.0.101 Port 80 


root @siftworkstation: /home/sansforensics 
root@siftworkstation: /hom ansforensics# mount -t ntfs -o loop,offset= 
8],ro,noexec /mnt/vmdk/EntireDisk /mnt/windows_mounti 
root@siftworkstation: /home/sansforensics# ls /mnt/windows_mount1 


root@siftworkstation: /home/sansforensics# 
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ЗОМЕ АРМСЕ 


THINK LIKE AN ATTACKER AND MODEL YOUR THREAT 
TEST EVERYTHING YOU CAN 


EVOLVE WITH CARE 
TEST MANUALLY TOO 
DON’T FORGET TO FIX WHAT YOU FIND 


YOUR TURN 


twitter: @angus_tx 
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THANK YOU 


FOLLOW US ОМ: 
ibm.com/security 


securityintelligence.com 


xforce.ibmcloud.com 
@ibmsecurity 


youtube/user/ibmsecuritysolutions 


© Copyright IBM Corporation 2018. All rights reserved. The information contained in these materials is provided for informational purposes only, and is provided AS IS without warranty of any kind, express or implied. Any 
statement of direction represents IBM's current intent, is subject to change or withdrawal, and represent only goals and objectives. IBM, the IBM logo, and other IBM products and services are trademarks of the International 
Business Machines Corporation, in the United States, other countries or both. Other company, product, or service names may be trademarks or service marks of others. 


Statement of Good Security Practices: IT system security involves protecting systems and information through prevention, detection and response to improper access from within and outside your enterprise. Improper 
access can result in information being altered, destroyed, misappropriated or misused or can result in damage to or misuse of your systems, including for use in attacks on others. No IT system or product should be 


considered completely secure and no single product, service or security measure can be completely effective in preventing improper use or access. IBM systems, products and services are designed to be part of a lawful, 
comprehensive security approach, which will necessarily involve additional operational procedures, and may require other systems, products or services to be most effective. IBM does not warrant that any systems, products 


or services are immune from, or will make your enterprise immune from, the malicious or illegal conduct of any party. 


